Does reinstalling windows changes the efs key ?

  • Thread starter Thread starter bukks bunny
  • Start date Start date
  • Tags Tags
    Windows
Click For Summary
SUMMARY

Reinstalling Windows results in the loss of the Encrypting File System (EFS) keys, which are essential for decrypting previously encrypted files. When Windows is reinstalled, new user accounts are created, leading to new encryption keys that cannot access files encrypted under the old account. The absence of archived or exported keys means that users cannot recover their encrypted data, leading to permanent data loss. To prevent this issue, users must ensure that EFS keys and recovery keys are properly backed up before reinstalling the operating system.

PREREQUISITES
  • Understanding of Encrypting File System (EFS) in Windows
  • Knowledge of user account management in Windows
  • Familiarity with data backup strategies
  • Experience with Windows operating system installation processes
NEXT STEPS
  • Learn how to back up EFS encryption keys in Windows 10
  • Research methods for exporting and importing EFS keys
  • Explore recovery options for lost EFS keys
  • Understand the implications of user profile management on data security
USEFUL FOR

This discussion is beneficial for IT professionals, system administrators, and end-users who utilize EFS for file encryption and seek to understand the risks associated with reinstalling Windows without proper key management.

bukks bunny
Messages
4
Reaction score
0
hello everyone.so what happened was i reinstalled windows on my old home pc and iam not able to open the encrypted files in the same pc.It says 'access denied' though iam the admin.Is there any way i could open my files.?
 
Computer science news on Phys.org
This page

http://technet.microsoft.com/en-us/library/cc700811.aspx

says about half way down the page

"By far, the most frequent problem with EFS occurs when EFS encryption keys and/or recovery keys aren't archived. If keys aren't backed up, they cannot be replaced when lost. If keys cannot be used or replaced, data can be lost. If Windows is reinstalled (perhaps as the result of a disk crash) the keys are destroyed. If a user's profile is damaged, then keys are destroyed. In these, or in any other cases in which keys are damaged or lost and backup keys are unavailable, then encrypted files cannot be decrypted. The encryption keys are bound to the user account, and a new iteration of the operating system means new user accounts. A new user profile means new user keys. If keys are archived, or exported, they can be imported to a new account. If a revocation agent for the files exists, then that account can be used to recover the files. However, in many cases in which keys are destroyed, both user and revocation keys are absent and there is no backup, resulting in lost data."
 

Similar threads

Print from Linux CUPS to printer on Win8.1 with server side rendering [sort of solved]
  • · Replies 4 ·
Replies
4
Views
3K
Strange change in behavior of home/F11 and end/F12 keys on Dell laptop
  • · Replies 3 ·
Replies
3
Views
4K
How can I get the RUN button in Visual Studio Code to turn GREEN again?
  • · Replies 15 ·
Replies
15
Views
11K
Windows XP: If I have the disc?
  • · Replies 8 ·
Replies
8
Views
7K
Windows 10 made a brick out of my laptop
  • · Replies 123 ·
5
Replies
123
Views
20K
Mounting encrypted .img file on x86_64 Linux
  • · Replies 2 ·
Replies
2
Views
4K
Windows 10 Update - Caused Loop (Need a Computer )
  • · Replies 12 ·
Replies
12
Views
4K
How secure are unofficial MS Windows copies?
  • · Replies 11 ·
Replies
11
Views
3K
Is My Windows Genuine? Seeking Help for a Fake Installation
  • · Replies 11 ·
Replies
11
Views
2K
Why Does Windows 8.1 Flicker After Updates?
  • · Replies 5 ·
Replies
5
Views
3K